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AMENDMENT UNDER 37 C.F.R. §1.111 
U.S. APPLN. NO. 09/354,161 
ATTORNEY DOCKET NO. Q55099 



AMENDMENTS TO THE SPECIFICATION 

Please replace the present title with the following rewritten title: 



METHOD TO PROVIDE AUTHORIZATION[[,]] FROM A CERTIFYING 
AUTHORITY[[,]] A TERMINAL, T O A SERVICE PROVIDER USING AND-A 
CERTIFICATE REALIZING SUCH A METHOD AND A TELECOMMWnCATION 
NETWORK COMPRISn>JG SUCH A CERTIFYING AUTHORITY, SUCH A TERMDJAL, 
SUCH A SERVICE PROVIDER AND SUCH A CERTIFICATE 



2 



1- 



AMENDMENT UNDER 37 C.F.R. §1.111 
U.S. APPLN. NO. 09/354,161 
ATTORNEY DOCKET JnJO. Q55099 




Please amend the written disclosure as follows: 
Page 1, first full paragraph: 



The present invention relates to a method to provide authorization by a certifying 
authority to a service provider to execute predefined functionality v^hen a service is provided by 
the said-service provider to a terminal of a user, the said-method including includ e s the step of 
delivering a certificate, to a certifying authority.[[,]] The present invention is also related to a 
terminal, a service provider and a certificate realizing the sueh-a-method as d e scrib e d in th e 
pr e ambl e of claim 7, claim 8, claim 9 and claim 10 r e sp e ctiv e ly and to a telecommimication 
network comprising such a certifying authority, such a terminal and such a service provider as 
d e scrib e d in the pr e ambl e of claim 1 1 . 



Page 4, second full paragraph: 



The invention solves the problem by dividing the service providers into more detailed 
categories by giving a service provider access only to well specified functionality. This is 
realized by comprising in the certificate of a service provider a definition of the predefined 
^ functionality which is allowed to be executed by the service provider and which is part of the 
global functionality that supports the telecommunication environment. This is described by tho 
m e thod of claim 1 and is r e aliz e d by th e c e rtifying authority of claim 7, the t e rminal of claim 8, 
th e s e rvice provid e r of claim 9 and th e c e rtificat e of claim 10 that ar e includ e d in the 
t e l e communication network of claim 1 1 . 
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Paragraph bridging Pages 4 and 5: 



A drawback of the present invention is however that the certificate gets larger by 
comprising a definition of the allowed functionality. To overcome this deficiency, a hierarchical 
tree-like structure is used. A charact e ristic f e atxxr e that is a solution to this drawback is d e scrib e d 
in claim 2. Indeed, by introducing a ^hierarchical tree-like structure in the organization of the 
global functionality the definition of the predefined allowed functionality can at least partly be 
realized by a definition of a branch of the structure. Hereby authorization is provided to 
predefined functions of the predefined functionality that are related to the branch. In this way 
also libraries identifiers and function identifiers as defined by the wireless mark-up script 
language can be used to be mentioned in order to provide authorization for, e ith e r one function, 
all functions fi-om one library or all functions in all libraries: e.g.^ enable-all, enable-library- 
identifier, enable-function-identifier. 



Page 5, first full paragraph: 



1^ 



Another aspect of the present invention is A furth e r improv e m e nt of the definition of the 
predefined allowed functionality in the certificate is r e aliz e d with claim 3 . Herein it is described 
that the definition of the predefined functionality is at least partly realized by a revocation of part 
of the global fiinctionality. This is e.g. implemented by using not only an *enable' fimction with 
an allowed fiinction as argument but also by using an 'disable' fimction with a revoked function 
as argimient. Herewith, authorization to all functions of a library except one can easily be 
realized by enabling the library and disabling the revoked function. 
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Page 5, second full paragraph: 



The A furth e r impl e mentation is d e scrib e d in claim 4 . H e r e in it is d e scrib e d that th e 
definition of the predefined functionality comprises definitions of wireless mark-up script 
language. Indeed, such implementation takes the advantage of making use of already existing 
and defined functions in a common known scripting language. These functions are described in 
a specification: ' Wireless Application Protocol Wireless Markup Language Script WMLScript 
Language Specifications, version 30 April 1998 published by the WAP Wireless Application 
Protocol Forum ' 



Paragraph bridging Pages 5 and 6: 



Furthermore, as already mentioned above, the Wireless Telephony Application Interface 
libraries are organizing wireless mark-up script language functions into predefined functions and 
libraries such as call control, sending of short messages or managing a phone book. These 
functions and libraries of the wireless telephony application functions can also be used to define 
the allowed predefined functionality in the certificate. They are specified in the 'Wireless 
Application Protocol Wireless Telephony Application Interface specifications, fi-om the WAP 
fi)rum and published at April 30, 1998, 1 This is d e scrib e d in claim 5. 
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Page 6, fifst-fuirparagraph: 

Yet the definitions of standard functions of a terminal are introduced into the definition of 
the allowed predefined fiinctionality. Indeed, by introducing standard fiinctions as specified 
according to the Wireless Application Protocol WMLScript Standard Libraries Specifications, 
published by the WAP Forum at April aprU 30, 1998' a service provider is allowed to use this 
standard fimctionahty in order to provide e.g. calculator application. This is d e scrib e d in claim 



Page 7, second full paragraph: 

The above and other objects and features of the invention will become more apparent and 
the invention itself will be best understood by referring to FIG. 1 th e accompanying figur e which 
illustrates a telecommunication network. 



Page 7, third full paragraph: 

First, the working of the method of the present invention will be explained by means of a 
functional description of the fimctional blocks shown in FIG. I th e figur e. Based on this 
description, implementation of the functional blocks will be obvious to a person skilled in the art 
and will therefor not be described in further detail. In addition, the principle working of the 
method to provide authorization will be described. 
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Page 7, fourth full paragraph: 



1^ 



Referring to FIG. L th e figur e a telecommunication environment is shown. The 
telecommunication environment comprises a certifying authority CA, a terminal T of a user and 
a service provider SP. 




Page 7, fifth full paragraph: 



The certifying authority CA is coupled via a telecommunication network to the service 
provider SP and to the terminal T. Also the service provider SP and the terminal T are coupled 
to each other via the teleconraiunication network. However, in order not to overload FIG. I the 
Figur e, this telecommunication network is-in FIG. 1 is th e Figur e only shown in a simple way of 
inputs and outputs of the different included elements. Furthermore it has to be understood that it 
is clear to a person skilled in the art that such a telecommunication network includes more than 
one service provider SP, more than one terminal T and even might include more than one 
certifying authority. Since the invention can be explained only by mentioning the different 
above elements more elements are not shown in FIG. I th e figur e. 



7 



AMENDMENT UNDER 37 C.F.R. §1.111 
U.S. APPLN. NO. 09/354,161 
ATTORNEY DOCKET NO. Q55099 




Please d^ete the present Abstract of the Disclosure andfreplace it with the following 
new Abstract of the Disclosure. 

A method for use in a telecommunication environment that provides authorization by a 
certifying authority to a service provider whereby the service provider is allowed to execute 
predefined functionality when a service is provided by the service provider to a terminal of a 
user. The method delivers a certificate fi-om the certifying authority to the service provider. The 
method defines, in the certificate, a definition of the predefined allowed fiancfionality that is part 
of a global fimctionality supported in the telecommunication environment. 
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